libgcrypt: update to 1.12.0.
Noteworthy changes in version 1.12.0 (2026-01-29) [C27/A7/R0]
-------------------------------------------------
* New and extended interfaces:
- Allow access to the FIPS service indicator via the new
GCRYCTL_FIPS_SERVICE_INDICATOR control code.
[T7338,rCd0db6a5abf,rCf51f4e9893]
- Add GCRYCTL_FIPS_REJECT_NON_FIPS control code. [T7338,rCe52adf0948]
- Add GCRY_FIPS_FLAG_REJECT_PK_FLAGS constant. [T7338,rC0414e126b9]
- Make SHA-1 non-FIPS internally for the 1.12 API. This introduces
the GCRY_FIPS_FLAG_REJECT_MD_SHA1 constant. [rC4ee91a94bc]
- Add GCRY_FIPS_FLAG_REJECT_PK_FLAGS. [rC0414e126b9]
[65 lines not shown]
ansible-core: updated to 2.20.2
v2.20.2
Minor Changes
- ansible-test - Replace RHEL 10.0 remote with 10.1.
- ansible-test - Replace RHEL 9.6 remote with 9.7.
Bugfixes
- Fix Windows LIB env var corruption (https://github.com/ansible-collections/ansible.windows/issues/297).
- ``ansible``, ``ansible-console`` - fix executing ``- meta: end_play`` tasks.
- ansible-test - Upgrade ``expat`` during provisioning of Fedora 42 remote instances.
- ansible_local will no longer trigger variable injection default value deprecation.
- copy - when a single-file local directory was specified as the source, ``changed`` used to be ``false`` even when the source was actually copied. It now makes sure ``changed`` is ``true`` in this case. (https://github.com/ansible/ansible/issues/85833)
- deb822_repository - Remove ``Install-Python-Debian`` from files outputed by the ``deb822_repository`` module (https://github.com/ansible/ansible/issues/86395)
- dnf - When installing a dnf module, install and enable when missing, upgrade when present (https://github.com/ansible/ansible/issues/73457)
- dnf - fix package installation when specifying architecture without version (e.g., ``libgcc.i686``) where a different architecture of the same package is already installed (https://github.com/ansible/ansible/issues/86156).
[2 lines not shown]
mame: update to 0.285.
Are you ready for the first MAME release of 2026? MAME 0.285 is
out now! We’ve added support for an early, unreleased version of
Atari’s Relief Pitcher running on their System 1 platform. Moon
Raker, a Nichibutsu shooter from the late ’70s, has also been found
and emulated. Sega’s Waku Waku series has been further filled out
with the addition of Waku Waku Jumbo. And for something completely
different, Apple’s first computer built around the WIMP paradigm,
the Lisa, is starting the year in substantially better shape.
If you play arcade games that utilised lightguns, you’ll no doubt
be aware that pulling the trigger while aiming the gun away from
the screen was a common way to reload. You may also be aware that
MAME had an option to make this a bit easier if you’re using a
lightgun to play. That option has been removed, with a new plugin
taking its place. The great news is that the plugin works even if
you aren’t using a lightgun. That’s right, you can now assign a
button to reload when you’re playing Virtua Cop or Lethal Enforcers
[11 lines not shown]
appstream: updated to 1.1.2
Version 1.1.2
Features:
* cli: Add rudimentary support for bash completion
Specification:
* docs: Fix a minor typo on the translation quickstart page
Bugfixes:
* validator: Catch more cases of existing, but empty properties
* tests: Fix tests with libfyaml > 0.9.2
* cli: Recommend/use pkgcli instead of pkcon if available
Miscellaneous:
* Use our symbol visibility helper macros consistently everywhere
* meson: Do not update po files on l10n-update
dpkg: updated to 1.23.5
dpkg (1.23.5) unstable; urgency=medium
[ Guillem Jover ]
* dpkg-source: Do not error out on empty fields.
* Perl modules:
- Dpkg::Email::Address: Do not construct invalid objects.
- Dpkg::Control::FieldsCore: Improve Maintainer and Uploader field parse
errors.
* Documentation:
- man: Improve dpkg-buildpackage --sign-backend description.
* Build system:
- Move the dist artifacts to the release directory.
* Test suite:
- Add known exception sources for ProhibitCaptureWithoutTest.
py-psutil: updated to 7.2.2
7.2.2
**Enhancements**
- 2705_: [Linux]: `Process.wait()`_ now uses ``pidfd_open()`` + ``poll()`` for
waiting, resulting in no busy loop and faster response times. Requires
Linux >= 5.3 and Python >= 3.9. Falls back to traditional polling if
unavailable.
- 2705_: [macOS], [BSD]: `Process.wait()`_ now uses ``kqueue()`` for waiting,
resulting in no busy loop and faster response times.
**Bug fixes**
- 2701_, [macOS]: fix compilation error on macOS < 10.7. (patch by Sergey
Fedorov)
- 2707_, [macOS]: fix potential memory leaks in error paths of
`Process.memory_full_info()` and `Process.threads()`.
[3 lines not shown]
py-psleak: updated to 0.1.5
A testing framework for detecting memory leaks and unclosed resources
created by Python functions, particularly those implemented in C
or other native extensions.
py-uv py-uv-build: updated to 0.9.28
0.9.28
Python
Update CPython to use OpenSSL 3.5.5 which includes fixes for high severity CVEs
Enhancements
Add support for Pyodide interpreter on Windows
Warn if multiple indexes include default = true
Skip uploads when validation reports 'Already uploaded'
Configuration
Add a reflink alias for the "clone" link mode
Bug fixes
[44 lines not shown]
gam: update to 7.32.06
Changes since 7.29.01:
7.32.06
Added options to gam <UserTypeEntity> copy drivefile ... copysubfiles to limit copying to files whose modifiedTime meets specified requirements.
start|starttime <Date>|<Time> - If specified, modifiedTime must be >= the value
end|endtime <Date>|<Time> - If specified, modifiedTime must be <= the value
range <Date>|<Time> <Date>|<Time> - first value <= modifiedTime <= second value
7.32.05
Fixed bug in gam <UserTypeEntity> print messages|threads ... headers <SMTPHeaderList> where headers other than those specified in <SMTPHeaderList> were displayed.
Updated gam info users <UserTypeEntity> to display the following data when the Licensing API does not return data due to quota limits. Previously, no License data was displayed and there was no way to know if it was omitted due to API quota limits vs the user has no license?
Licenses: (1)
[210 lines not shown]
tealdeer: update to 1.8.1
This patch release tweaks the enabled features for ureq, the library we
use to perform HTTP requests when updating the cache. In particular,
support for socks proxies is now enabled.
tor: Update to 0.4.8.22
Changes:
Changes in version 0.4.8.22 - 2026-01-28
This is likely the very last release of the 0.4.8.x series. Three major
bugfixes detailled below including two affecting directory servers (basically
all relays). We strongly recommend upgrading as soon as possible.
o Major bugfixes (security):
- Avoid an out-of-bounds read error that could occur with
V1-formatted cells. Fixes bug 41180; bugfix on 0.4.8.1-alpha. This
is tracked as TROVE-2025-016.
o Major bugfixes (directory servers):
- Allow old clients to fetch the consensus even if they use version
0 of the SENDME protocol. In mid 2025 we changed the required
minimum version of the "FlowCtrl" protocol to 1, meaning directory
caches hang up on clients that send a version 0 SENDME cell. Since
old clients were no longer able to retrieve the consensus, they
[42 lines not shown]
pkg-vulnerabilities: restrict CVE-2021-39246 to older tor
This was fixed in tor-0.4.6.10 and should be no longer a problem given that v2
onion addresses should be no longer around and supported.
Pull up following revision(s) (requested by mrg in ticket #2001):
usr.sbin/ypserv/yppush/yppush.c: revision 1.26
_SC_OPEN_MAX can exceed FD_SETSIZE. Use the compat value svc_maxfd+1
from the rpc library similar to ypbind(8).
The custom _svc_run() function is required as the standard svc_run()
may hang for retries.
Fixes PR 59750.
